darkcomet | c6f046412481145ab7556d3d6bb390c286f6ab292833c57a3b6a3c570817483f | Triage

Sharing

General

Target

00ae7ab4d6bf02d1358326df176f4023_JaffaCakes118
Size

865KB
Sample

240619-1mskhatamb
MD5

00ae7ab4d6bf02d1358326df176f4023
SHA1

9393861cafd77f244b18cfbeec8d405e3903267f
SHA256

c6f046412481145ab7556d3d6bb390c286f6ab292833c57a3b6a3c570817483f
SHA512

b266dd7755b806318645fa67c985f77093e60bbc67bf904f97991ce3f15bd7fd96389bbdef0c26e977d8ef7e4db7097af90d749d98fe75d2b9b3655f19dd0d00
SSDEEP

24576:9ntlh2+wA42A4QRU2lW1ARbp2N9QNaGDlh3:9jA4a7iG3DlV

Score

10^/10

darkcomet rat trojan

Malware Config

Targets

- Target
  
  00ae7ab4d6bf02d1358326df176f4023_JaffaCakes118
- Size
  
  865KB
- MD5
  
  00ae7ab4d6bf02d1358326df176f4023
- SHA1
  
  9393861cafd77f244b18cfbeec8d405e3903267f
- SHA256
  
  c6f046412481145ab7556d3d6bb390c286f6ab292833c57a3b6a3c570817483f
- SHA512
  
  b266dd7755b806318645fa67c985f77093e60bbc67bf904f97991ce3f15bd7fd96389bbdef0c26e977d8ef7e4db7097af90d749d98fe75d2b9b3655f19dd0d00
- SSDEEP
  
  24576:9ntlh2+wA42A4QRU2lW1ARbp2N9QNaGDlh3:9jA4a7iG3DlV
Score

10^/10

darkcomet rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

darkcometrattrojan

behavioral2

darkcometrattrojan